QwikSec

Security Database

CVE

CWE

Training

CVE-2017-2733

Published: Nov 22, 2017

Modified: Sep 16, 2024

PUBLISHED

Description

Honor 6X smartphones with software versions earlier than BLN-AL10C00B357 and versions earlier than BLN-AL20C00B357 have an information leak vulnerability due to improper file permission configuration. An attacker tricks a user into installing a malicious application on the smart phone, and the application can get the file that keep the cipher text of the SIM card PIN.

Vendor	Product	Versions
Huawei Technologies Co., Ltd.	Honor 6X	affected `Versions earlier than BLN-AL10C00B357, Versions earlier than BLN-AL20C00B357`

References

http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20170405-02-smartphone-en

x_refsource_CONFIRM

vdb-entry

x_refsource_BID

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.